Microsoft Patches Were Evaluated up to and Including CVE-2020-1587
Total Page:16
File Type:pdf, Size:1020Kb
Honeywell Commercial Security 2700 Blankenbaker Pkwy, Suite 150 Louisville, KY 40299 Phone: 1-502-297-5700 Phone: 1-800-323-4576 Fax: 1-502-666-7021 https://www.security.honeywell.com The purpose of this document is to identify the patches that have been delivered by Microsoft® which have been tested against Pro-Watch. All the below listed patches have been tested against the current shipping version of Pro-Watch with no adverse effects being observed. Microsoft Patches were evaluated up to and including CVE-2020-1587. Patches not listed below are not applicable to a Pro-Watch system. 2020 – Microsoft® Patches Tested with Pro-Watch CVE-2020-1587 Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability CVE-2020-1584 Windows dnsrslvr.dll Elevation of Privilege Vulnerability CVE-2020-1579 Windows Function Discovery SSDP Provider Elevation of Privilege Vulnerability CVE-2020-1578 Windows Kernel Information Disclosure Vulnerability CVE-2020-1577 DirectWrite Information Disclosure Vulnerability CVE-2020-1570 Scripting Engine Memory Corruption Vulnerability CVE-2020-1569 Microsoft Edge Memory Corruption Vulnerability CVE-2020-1568 Microsoft Edge PDF Remote Code Execution Vulnerability CVE-2020-1567 MSHTML Engine Remote Code Execution Vulnerability CVE-2020-1566 Windows Kernel Elevation of Privilege Vulnerability CVE-2020-1565 Windows Elevation of Privilege Vulnerability CVE-2020-1564 Jet Database Engine Remote Code Execution Vulnerability CVE-2020-1562 Microsoft Graphics Components Remote Code Execution Vulnerability CVE-2020-1561 Microsoft Graphics Components Remote Code Execution Vulnerability CVE-2020-1558 Jet Database Engine Remote Code Execution Vulnerability CVE-2020-1557 Jet Database Engine Remote Code Execution Vulnerability CVE-2020-1556 Windows WalletService Elevation of Privilege Vulnerability CVE-2020-1555 Scripting Engine Memory Corruption Vulnerability CVE-2020-1554 Media Foundation Memory Corruption Vulnerability CVE-2020-1553 Windows Runtime Elevation of Privilege Vulnerability CVE-2020-1552 Windows Work Folder Service Elevation of Privilege Vulnerability CVE-2020-1551 Windows Backup Engine Elevation of Privilege Vulnerability CVE-2020-1550 Windows CDP User Components Elevation of Privilege Vulnerability CVE-2020-1549 Windows CDP User Components Elevation of Privilege Vulnerability CVE-2020-1548 Windows WaasMedic Service Information Disclosure Vulnerability CVE-2020-1547 Windows Backup Engine Elevation of Privilege Vulnerability CVE-2020-1546 Windows Backup Engine Elevation of Privilege Vulnerability CVE-2020-1545 Windows Backup Engine Elevation of Privilege Vulnerability CVE-2020-1544 Windows Backup Engine Elevation of Privilege Vulnerability CVE-2020-1543 Windows Backup Engine Elevation of Privilege Vulnerability CVE-2020-1542 Windows Backup Engine Elevation of Privilege Vulnerability CVE-2020-1541 Windows Backup Engine Elevation of Privilege Vulnerability CVE-2020-1540 Windows Backup Engine Elevation of Privilege Vulnerability CVE-2020-1539 Windows Backup Engine Elevation of Privilege Vulnerability CVE-2020-1538 Windows UPnP Device Host Elevation of Privilege Vulnerability CVE-2020-1537 Windows Remote Access Elevation of Privilege Vulnerability Honeywell Commercial Security 2700 Blankenbaker Pkwy, Suite 150 Louisville, KY 40299 Phone: 1-502-297-5700 Phone: 1-800-323-4576 Fax: 1-502-666-7021 https://www.security.honeywell.com CVE-2020-1536 Windows Backup Engine Elevation of Privilege Vulnerability CVE-2020-1535 Windows Backup Engine Elevation of Privilege Vulnerability CVE-2020-1534 Windows Backup Service Elevation of Privilege Vulnerability CVE-2020-1533 Windows WalletService Elevation of Privilege Vulnerability CVE-2020-1531 Windows Accounts Control Elevation of Privilege Vulnerability CVE-2020-1530 Windows Remote Access Elevation of Privilege Vulnerability CVE-2020-1529 Windows GDI Elevation of Privilege Vulnerability CVE-2020-1528 Windows Radio Manager API Elevation of Privilege Vulnerability CVE-2020-1527 Windows Custom Protocol Engine Elevation of Privilege Vulnerability CVE-2020-1526 Windows Network Connection Broker Elevation of Privilege Vulnerability CVE-2020-1525 Media Foundation Memory Corruption Vulnerability CVE-2020-1524 Windows Speech Shell Components Elevation of Privilege Vulnerability CVE-2020-1522 Windows Speech Runtime Elevation of Privilege Vulnerability CVE-2020-1521 Windows Speech Runtime Elevation of Privilege Vulnerability CVE-2020-1520 Windows Font Driver Host Remote Code Execution Vulnerability CVE-2020-1519 Windows UPnP Device Host Elevation of Privilege Vulnerability Windows File Server Resource Management Service Elevation of Privilege CVE-2020-1518 Vulnerability Windows File Server Resource Management Service Elevation of Privilege CVE-2020-1517 Vulnerability CVE-2020-1516 Windows Work Folders Service Elevation of Privilege Vulnerability CVE-2020-1515 Windows Telephony Server Elevation of Privilege Vulnerability CVE-2020-1513 Windows CSC Service Elevation of Privilege Vulnerability CVE-2020-1512 Windows State Repository Service Information Disclosure Vulnerability Connected User Experiences and Telemetry Service Elevation of Privilege CVE-2020-1511 Vulnerability CVE-2020-1510 Win32k Information Disclosure Vulnerability CVE-2020-1509 Local Security Authority Subsystem Service Elevation of Privilege Vulnerability CVE-2020-1492 Media Foundation Memory Corruption Vulnerability CVE-2020-1490 Windows Storage Service Elevation of Privilege Vulnerability CVE-2020-1489 Windows CSC Service Elevation of Privilege Vulnerability CVE-2020-1488 Windows AppX Deployment Extensions Elevation of Privilege Vulnerability CVE-2020-1487 Media Foundation Information Disclosure Vulnerability CVE-2020-1486 Windows Kernel Elevation of Privilege Vulnerability CVE-2020-1485 Windows Image Acquisition Service Information Disclosure Vulnerability CVE-2020-1484 Windows Work Folders Service Elevation of Privilege Vulnerability CVE-2020-1480 Windows GDI Elevation of Privilege Vulnerability CVE-2020-1479 DirectX Elevation of Privilege Vulnerability CVE-2020-1478 Media Foundation Memory Corruption Vulnerability CVE-2020-1477 Media Foundation Memory Corruption Vulnerability CVE-2020-1476 ASP.NET and .NET Elevation of Privilege Vulnerability CVE-2020-1475 Windows Server Resource Management Service Elevation of Privilege Vulnerability CVE-2020-1474 Windows Image Acquisition Service Information Disclosure Vulnerability Honeywell Commercial Security 2700 Blankenbaker Pkwy, Suite 150 Louisville, KY 40299 Phone: 1-502-297-5700 Phone: 1-800-323-4576 Fax: 1-502-666-7021 https://www.security.honeywell.com CVE-2020-1473 Jet Database Engine Remote Code Execution Vulnerability CVE-2020-1472 Netlogon Elevation of Privilege Vulnerability CVE-2020-1470 Windows Work Folders Service Elevation of Privilege Vulnerability CVE-2020-1468 Windows GDI Information Disclosure Vulnerability CVE-2020-1467 Windows Hard Link Elevation of Privilege Vulnerability CVE-2020-1466 Windows Remote Desktop Gateway (RD Gateway) Denial of Service Vulnerability CVE-2020-1464 Windows Spoofing Vulnerability CVE-2020-1463 Windows SharedStream Library Elevation of Privilege Vulnerability Skype for Business via Microsoft Edge (EdgeHTML-based) Information Disclosure CVE-2020-1462 Vulnerability CVE-2020-1459 Windows ARM Information Disclosure Vulnerability CVE-2020-1441 Windows Spatial Data Service Elevation of Privilege Vulnerability CVE-2020-1438 Windows Network Connections Service Elevation of Privilege Vulnerability CVE-2020-1437 Windows Network Location Awareness Service Elevation of Privilege Vulnerability CVE-2020-1436 Windows Font Library Remote Code Execution Vulnerability CVE-2020-1435 GDI+ Remote Code Execution Vulnerability CVE-2020-1434 Windows Sync Host Service Elevation of Privilege Vulnerability CVE-2020-1433 Microsoft Edge PDF Information Disclosure Vulnerability CVE-2020-1432 Skype for Business via Internet Explorer Information Disclosure Vulnerability CVE-2020-1431 Windows AppX Deployment Extensions Elevation of Privilege Vulnerability CVE-2020-1430 Windows UPnP Device Host Elevation of Privilege Vulnerability CVE-2020-1429 Windows Error Reporting Manager Elevation of Privilege Vulnerability CVE-2020-1428 Windows Network Connections Service Elevation of Privilege Vulnerability CVE-2020-1427 Windows Network Connections Service Elevation of Privilege Vulnerability CVE-2020-1426 Windows Kernel Information Disclosure Vulnerability CVE-2020-1424 Windows Update Stack Elevation of Privilege Vulnerability CVE-2020-1422 Windows Runtime Elevation of Privilege Vulnerability CVE-2020-1421 LNK Remote Code Execution Vulnerability CVE-2020-1420 Windows Error Reporting Information Disclosure Vulnerability CVE-2020-1419 Windows Kernel Information Disclosure Vulnerability CVE-2020-1418 Windows Diagnostics Hub Elevation of Privilege Vulnerability CVE-2020-1417 Windows Kernel Elevation of Privilege Vulnerability CVE-2020-1415 Windows Runtime Elevation of Privilege Vulnerability CVE-2020-1414 Windows Runtime Elevation of Privilege Vulnerability CVE-2020-1413 Windows Runtime Elevation of Privilege Vulnerability CVE-2020-1412 Microsoft Graphics Components Remote Code Execution Vulnerability CVE-2020-1411 Windows Kernel Elevation of Privilege Vulnerability CVE-2020-1410 Windows Address Book Remote Code Execution Vulnerability CVE-2020-1409 DirectWrite Remote Code Execution Vulnerability CVE-2020-1408 Microsoft Graphics Remote Code Execution Vulnerability CVE-2020-1407 Jet Database Engine Remote Code Execution Vulnerability CVE-2020-1406 Windows